Microsoft SSO will allow authenticated users from Microsoft 365 the ability to access vcIOToolbox with their Microsoft credentials. The system, by default, will only authenticate users with vCIOToolbox accounts. The system will match the name with Microsoft Entra (formerly Active Directory) to confirm the user is in that system and then grant SSO access.
To configure Microsoft SSO, you can follow the steps below.
1. You will need your Tenant ID from your Micorosft 365 service. To get that log into your Microsoft 365 administrative console and click on the Admin menu item.
2. Expand the left-hand menu by clicking on the icon (see image), click on Show All (not pictured), and then click All Admin Centers.
3. Click on Microsoft Entra (formerly Microsoft Azure Acitve Directory).
4. Select your ID and enter Entra.
5. Choose Entra ID
7. Access your Tenant ID.
8. In vCIOToolbox, navigate to QBR or GRC and choose Integrations > Microsoft SSO
9. Choose Microsoft SSO and add your Domain(s) and your Tenant ID.
10. For the policy Allow all SSO Authenticated Users to Access this system leave the defualt as False if you wish to limit the access to only users created explicity for use in vCIOToolbox. This will force a user match with Microsoft Entra (AD) to allow SSO services. If you want to grant all users in your organizaton access change to True.
11. Users can now use SSO to sign into vCIOToolbox.
12. When you log on click on the banner allowing Microsoft access and choose the option that will allow SSO for the entire organization.
13. This action will build an Enterprise application for vCIOToolbox in your Entra/Active Directory and this will manage user matching between vCIOToolbox and Microsoft SSO and allow acccess to the approved users.